Hi,
We are a small Swedish SaaS-vendor with an email marketing solution called EditNews.
The past month our platform has been exploited for malicious use.
We offer a self-service upgrade process, as is common with SaaS-solutions.
A combination of honey traps and captcha has, until now, been effective at keeping bots and the like out.
During August a number of trial accounts were created, and then subsequently upgraded to a paid tier. These accounts have then started sending spam and phising emails.
The offending accounts have been terminated, and any links previously used in a phishing attack have been redirected from the malicious sites (which were hosted outside of our control, most being hacked WordPress-sites from what we could see) to our company homepage.
Now we have completely turned off trial accounts and self-service upgrades, until we can get a reliable solution in place that guarantees that this won't happen again.
I request that you delist app2 [dot] editnews [dot] com and any other URL you might have listed recently related to it.
Please let me know if you need anything else from us, or if you have any tips in dealing with this situation.